On Sat, Oct 28, 2006 at 03:03:24PM -0400, Howard Krakower wrote: > > Saturday, October 28, 2006, 11:41:57 AM, Martin Hicks wrote: > > MH> On Fri, Oct 27, 2006 at 03:54:48PM -0400, paul [ dot ] sadler [ at ] sdc-dsc [ dot ] gc [ dot ] ca wrote: > >> ...and I can't meet the November meeting, but wanted to ask three questions before then. First, I should introduce myself -- "Hi, my name is Paul, and I'll be your interrogator for the next few minutes". My background is almost all M$ although I've done a bit of UNIX, MAC, no LINUX. Good with software, less so with hardware, programming experience is old (Basic, advanced basic, fortran, cobol, dos stuff). Once programmed a menu shell program in basic and dos, but only thing recent is ASP pages. Now here's the nightmare scenario -- that's my background, and I'm going to run a Linux server for my personal low-traffic website. Likely scenario for configuration at home is: > >> > >> - External router dividing into website server and a second "internal" router > >> - Internal router connecting second "test server" and fileserver, with two other PCs and a laptop > > MH> much complicated. Most of those commercial routers have a "DMZ" > MH> concept, which essentially forwards all external traffic to a single > MH> machine on the internal side. That's what you really want. > > To a greater extent I agree - I would suggest using a Linksys BEFSR41 > router (simple, easy to configure and, best of all, cheap=less to $50) and port > forward the ports you are likely to use to the linux server (e.g. 80, > 8080, 110, 25, 21, 22 etc, see > http://www.iana.org/assignments/port-numbers ) I'd actually recommend the old linksys wrt54g or 54gs. They run linux. The newer ones are labelled a different way. If you have one of these then you can install different Linux distros on them and do whatever you want to. I run OpenWRT (www.openwrt.org) on mine and it does ssh, OpenSWAN/IPSec, I monitor traffic with MRTG, it does ipv6, etc. I also have ultimate control over the firewalling and can do all the magic that is allowed with iptables and ip6tables. mh -- Martin Hicks || mort [ at ] bork [ dot ] org || PGP/GnuPG: 0x4C7F2BEE
Attachment:
signature.asc
Description: Digital signature